A major FBI operation has deleted Chinese malware from thousands of US computers
Posted by:
John Harrison
In a groundbreaking collaboration between the FBI, international partners, and French cybersecurity firms, a critical blow has been dealt to Chinese state-sponsored cyber espionage. The notorious malware, PlugX, developed by the Chinese threat group Twill Typhoon, was successfully neutralized in a coordinated operation. This custom-built malware had been infiltrating and compromising thousands of computers, primarily in the US, Europe, and Asia, for years.
Investigators, including experts from Sekoia.io, managed to dismantle the malicious PlugX malware through a unique kill switch method. By exploiting the malware’s own command & control infrastructure, a strategic operation was conducted to orchestrate its self-destruction effectively. More than 4,000 infected computers in the US alone were purged of the harmful malware.
The DoJ emphasized the significance of this operation in curbing the audacious and aggressive tactics of Chinese state-sponsored hackers. US Attorney Jacqueline Romero condemned the extensive breach of personal and sensitive data as a demonstration of the malicious intent of these cyber attackers. This resolute action underscores the ongoing battle against cyber threats and the commitment to safeguarding digital security on a global scale.
Recent Posts1
